Total
23703 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2020-5213 | 1 Nethack | 1 Nethack | 2023-12-10 | 7.5 HIGH | 9.8 CRITICAL |
In NetHack before 3.6.5, too long of a value for the SYMBOL configuration file option can cause a buffer overflow resulting in a crash or remote code execution/privilege escalation. This vulnerability affects systems that have NetHack installed suid/sgid and shared systems that allow users to upload their own configuration files. Users should upgrade to NetHack 3.6.5. | |||||
CVE-2019-19841 | 1 Ruckuswireless | 17 C110, E510, H320 and 14 more | 2023-12-10 | 10.0 HIGH | 9.8 CRITICAL |
emfd in Ruckus Wireless Unleashed through 200.7.10.102.64 allows remote attackers to execute OS commands via a POST request with the attribute xcmd=packet-capture to admin/_cmdstat.jsp via the mac attribute. | |||||
CVE-2019-13411 | 1 Hinet | 2 Gpon, Gpon Firmware | 2023-12-10 | 7.5 HIGH | 9.8 CRITICAL |
An “invalid command” handler issue was discovered in HiNet GPON firmware < I040GWR190731. It allows an attacker to execute arbitrary command through port 3097. CVSS 3.0 Base score 10.0. CVSS vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H). | |||||
CVE-2013-1599 | 1 Dlink | 34 Dcs-1100, Dcs-1100 Firmware, Dcs-1100l and 31 more | 2023-12-10 | 10.0 HIGH | 9.8 CRITICAL |
A Command Injection vulnerability exists in the /var/www/cgi-bin/rtpd.cgi script in D-Link IP Cameras DCS-3411/3430 firmware 1.02, DCS-5605/5635 1.01, DCS-1100L/1130L 1.04, DCS-1100/1130 1.03, DCS-1100/1130 1.04_US, DCS-2102/2121 1.05_RU, DCS-3410 1.02, DCS-5230 1.02, DCS-5230L 1.02, DCS-6410 1.00, DCS-7410 1.00, DCS-7510 1.00, and WCS-1100 1.02, which could let a remote malicious user execute arbitrary commands through the camera’s web interface. | |||||
CVE-2018-16357 | 1 Pbootcms | 1 Pbootcms | 2023-12-10 | 7.5 HIGH | 9.8 CRITICAL |
An issue was discovered in PbootCMS. There is a SQL injection via the api.php/Cms/search order parameter. | |||||
CVE-2019-16383 | 1 Ipswitch | 1 Moveit Transfer | 2023-12-10 | 7.5 HIGH | 9.4 CRITICAL |
MOVEit.DMZ.WebApi.dll in Progress MOVEit Transfer 2018 SP2 before 10.2.4, 2019 before 11.0.2, and 2019.1 before 11.1.1 allows an unauthenticated attacker to gain unauthorized access to the database. Depending on the database engine being used (MySQL, Microsoft SQL Server, or Azure SQL), an attacker may be able to infer information about the structure and contents of the database, or may be able to alter the database via the REST API, aka SQL Injection. | |||||
CVE-2012-5867 | 1 Ht Editor Project | 1 Ht Editor | 2023-12-10 | 7.5 HIGH | 9.8 CRITICAL |
HT Editor 2.0.20 has a Remote Stack Buffer Overflow Vulnerability | |||||
CVE-2019-3984 | 1 Amazon | 2 Blink Xt2 Sync Module, Blink Xt2 Sync Module Firmware | 2023-12-10 | 10.0 HIGH | 9.8 CRITICAL |
Blink XT2 Sync Module firmware prior to 2.13.11 allows remote attackers to execute arbitrary commands on the device due to improperly sanitized input when the device retrieves updates scripts from the internet. | |||||
CVE-2012-0824 | 1 Gnu | 1 Gnusound | 2023-12-10 | 7.5 HIGH | 9.8 CRITICAL |
gnusound 0.7.5 has format string issue | |||||
CVE-2019-11049 | 5 Debian, Fedoraproject, Microsoft and 2 more | 5 Debian Linux, Fedora, Windows and 2 more | 2023-12-10 | 7.5 HIGH | 9.8 CRITICAL |
In PHP versions 7.3.x below 7.3.13 and 7.4.0 on Windows, when supplying custom headers to mail() function, due to mistake introduced in commit 78f4b4a2dcf92ddbccea1bb95f8390a18ac3342e, if the header is supplied in lowercase, this can result in double-freeing certain memory locations. | |||||
CVE-2019-18663 | 1 Isl | 1 Arp-guard | 2023-12-10 | 7.5 HIGH | 9.8 CRITICAL |
A SQL injection vulnerability in a /login/forgot1 POST request in ARP-GUARD 4.0.0-5 allows unauthenticated remote attackers to execute arbitrary SQL commands via the user_id parameter. | |||||
CVE-2019-16778 | 1 Google | 1 Tensorflow | 2023-12-10 | 7.5 HIGH | 9.8 CRITICAL |
In TensorFlow before 1.15, a heap buffer overflow in UnsortedSegmentSum can be produced when the Index template argument is int32. In this case data_size and num_segments fields are truncated from int64 to int32 and can produce negative numbers, resulting in accessing out of bounds heap memory. This is unlikely to be exploitable and was detected and fixed internally in TensorFlow 1.15 and 2.0. | |||||
CVE-2019-17275 | 1 Netapp | 1 Oncommand Cloud Manager | 2023-12-10 | 7.5 HIGH | 9.8 CRITICAL |
OnCommand Cloud Manager versions prior to 3.8.0 are susceptible to arbitrary code execution by remote attackers. | |||||
CVE-2013-2166 | 4 Debian, Fedoraproject, Openstack and 1 more | 4 Debian Linux, Fedora, Python-keystoneclient and 1 more | 2023-12-10 | 7.5 HIGH | 9.8 CRITICAL |
python-keystoneclient version 0.2.3 to 0.2.5 has middleware memcache encryption bypass | |||||
CVE-2015-6922 | 1 Kaseya | 1 Virtual System Administrator | 2023-12-10 | 7.5 HIGH | 9.8 CRITICAL |
Kaseya Virtual System Administrator (VSA) 7.x before 7.0.0.33, 8.x before 8.0.0.23, 9.0 before 9.0.0.19, and 9.1 before 9.1.0.9 does not properly require authentication, which allows remote attackers to bypass authentication and (1) add an administrative account via crafted request to LocalAuth/setAccount.aspx or (2) write to and execute arbitrary files via a full pathname in the PathData parameter to ConfigTab/uploader.aspx. | |||||
CVE-2020-5214 | 1 Nethack | 1 Nethack | 2023-12-10 | 7.5 HIGH | 9.8 CRITICAL |
In NetHack before 3.6.5, detecting an unknown configuration file option can cause a buffer overflow resulting in a crash or remote code execution/privilege escalation. This vulnerability affects systems that have NetHack installed suid/sgid and shared systems that allow users to upload their own configuration files. Users should upgrade to NetHack 3.6.5. | |||||
CVE-2019-10748 | 1 Sequelizejs | 1 Sequelize | 2023-12-10 | 7.5 HIGH | 9.8 CRITICAL |
Sequelize all versions prior to 3.35.1, 4.44.3, and 5.8.11 are vulnerable to SQL Injection due to JSON path keys not being properly escaped for the MySQL/MariaDB dialects. | |||||
CVE-2019-15751 | 1 Sitos | 1 Sitos Six | 2023-12-10 | 10.0 HIGH | 9.8 CRITICAL |
An unrestricted file upload vulnerability in SITOS six Build v6.2.1 allows remote attackers to execute arbitrary code by uploading a SCORM file with an executable extension. This allows an unauthenticated attacker to upload a malicious file (containing PHP code to execute operating system commands) to the web root of the application. | |||||
CVE-2013-3960 | 1 Easytimestudio | 1 Easy File Manager | 2023-12-10 | 8.7 HIGH | 9.9 CRITICAL |
Easytime Studio Easy File Manager 1.1 has a HTTP request security bypass | |||||
CVE-2019-17626 | 1 Reportlab | 1 Reportlab | 2023-12-10 | 7.5 HIGH | 9.8 CRITICAL |
ReportLab through 3.5.26 allows remote code execution because of toColor(eval(arg)) in colors.py, as demonstrated by a crafted XML document with '<span color="' followed by arbitrary Python code. |